public class CertificatePair extends ASN1Object
crossCertificatePairATTRIBUTE::={ WITH SYNTAX CertificatePair EQUALITY MATCHING RULE certificatePairExactMatch ID joint-iso-ccitt(2) ds(5) attributeType(4) crossCertificatePair(40)}
The forward elements of the crossCertificatePair attribute of a CA's directory entry shall be used to store all, except self-issued certificates issued to this CA. Optionally, the reverse elements of the crossCertificatePair attribute, of a CA's directory entry may contain a subset of certificates issued by this CA to other CAs. When both the forward and the reverse elements are present in a single attribute value, issuer name in one certificate shall match the subject name in the other and vice versa, and the subject public key in one certificate shall be capable of verifying the digital signature on the other certificate and vice versa. When a reverse element is present, the forward element value and the reverse element value need not be stored in the same attribute value; in other words, they can be stored in either a single attribute value or two attribute values.
CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
Modifier and Type | Field and Description |
---|---|
private X509CertificateStructure |
forward |
private X509CertificateStructure |
reverse |
Modifier | Constructor and Description |
---|---|
private |
CertificatePair(ASN1Sequence seq)
Constructor from ASN1Sequence.
|
|
CertificatePair(X509CertificateStructure forward,
X509CertificateStructure reverse)
Constructor from a given details.
|
Modifier and Type | Method and Description |
---|---|
X509CertificateStructure |
getForward() |
static CertificatePair |
getInstance(java.lang.Object obj) |
X509CertificateStructure |
getReverse() |
ASN1Primitive |
toASN1Primitive()
Produce an object suitable for an ASN1OutputStream.
|
equals, getEncoded, getEncoded, hasEncodedTagValue, hashCode, toASN1Object
private X509CertificateStructure forward
private X509CertificateStructure reverse
private CertificatePair(ASN1Sequence seq)
CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
seq
- The ASN.1 sequence.public CertificatePair(X509CertificateStructure forward, X509CertificateStructure reverse)
forward
- Certificates issued to this CA.reverse
- Certificates issued by this CA to other CAs.public static CertificatePair getInstance(java.lang.Object obj)
public ASN1Primitive toASN1Primitive()
CertificatePair ::= SEQUENCE { forward [0] Certificate OPTIONAL, reverse [1] Certificate OPTIONAL, -- at least one of the pair shall be present -- }
toASN1Primitive
in interface ASN1Encodable
toASN1Primitive
in class ASN1Object
public X509CertificateStructure getForward()
public X509CertificateStructure getReverse()